Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-266 (特权授予不正确) — Vulnerability Class 382

382 vulnerabilities classified as CWE-266 (特权授予不正确). AI Chinese analysis included.

CWE-266 represents a critical access control weakness where software incorrectly assigns privileges to an actor, granting them an unintended sphere of control. This flaw typically arises from flawed logic in role-based or discretionary access control mechanisms, allowing users to perform actions beyond their authorized scope. Attackers exploit this by manipulating input parameters or session tokens to escalate privileges, effectively bypassing security boundaries to access sensitive data or execute administrative functions. To prevent such vulnerabilities, developers must implement robust, centralized authorization checks that verify permissions at every critical point of execution rather than relying on client-side validations. Adhering to the principle of least privilege ensures that actors receive only the minimum access necessary for their specific tasks. Rigorous code reviews and automated security testing further help identify incorrect privilege assignments before deployment, maintaining strict integrity over system resources.

MITRE CWE Description
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
Common Consequences (1)
Access ControlGain Privileges or Assume Identity
A user can access restricted functionality and/or sensitive information that may include administrative functionality and user accounts.
Mitigations (2)
Architecture and Design, OperationVery carefully manage the setting, management, and handling of privileges. Explicitly manage trust zones in the software.
Architecture and Design, OperationRun your code using the lowest privileges that are required to accomplish the necessary tasks [REF-76]. If possible, create isolated accounts with limited privileges that are only used for a single task. That way, a successful attack will not immediately give the attacker access to the rest of the software or its environment. For example, database applications rarely need to run as the database ad…
Examples (2)
The following example demonstrates the weakness.
seteuid(0); /* do some stuff */ seteuid(getuid());
Bad · C
The following example demonstrates the weakness.
AccessController.doPrivileged(new PrivilegedAction() { public Object run() { // privileged code goes here, for example: System.loadLibrary("awt"); return null; // nothing to return }
Bad · Java
CVE IDTitleCVSSSeverityPublished
CVE-2023-3114 Terraform Enterprise Agent Pool Controls Allowed Unauthorized Workspaces To Target an Agent Pool — Terraform Enterprise 5.0 Medium2023-06-22
CVE-2023-28956 IBM Spectrum Protect Backup-Archive Client privilege escalation — Spectrum Protect Backup-Archive Client 8.4 High2023-06-22
CVE-2023-2485 Incorrect Privilege Assignment in GitLab — GitLab 4.4 Medium2023-06-07
CVE-2023-2816 Consul Envoy Extension Downsteam Proxy Configuration By Upstream Service Owner — Consul 8.7 High2023-06-02
CVE-2023-1174 [minikube] Network Port exposure in minikube running on macOS using Docker driver — minikube 9.8 Critical2023-05-24
CVE-2023-1874 WP Data Access <= 5.3.7 - Authenticated (Subscriber+) Privilege Escalation — WP Data Access – App Builder for Tables, Forms, Charts, Maps & Dashboards 7.5 High2023-04-12
CVE-2022-4441 Privilege Escalation Vulnerability in Hitachi Storage Plug-in for VMware vCenter — Hitachi Storage Plug-in for VMware vCenter 7.6 High2023-01-31
CVE-2022-4041 Privilege Escalation Vulnerability in Hitachi Storage Plug-in for VMware vCenter — Hitachi Storage Plug-in for VMware vCenter 5.9 Medium2023-01-31
CVE-2022-3876 Click Studios Passwordstate API authorization — Passwordstate 4.3 Medium2022-12-19
CVE-2022-4613 Click Studios Passwordstate Browser Extension Provisioning improper authorization — Passwordstate 5.0 Medium2022-12-19
CVE-2022-4281 Facepay camera.php authorization — Facepay 6.3 Medium2022-12-05
CVE-2022-4272 FeMiner wms unrestricted upload — wms 6.3 Medium2022-12-03
CVE-2022-4273 SourceCodester Human Resource Management System Content-Type employee.php unrestricted upload — Human Resource Management System 7.3 High2022-12-03
CVE-2022-4276 House Rental System POST Request tenant-engine.php unrestricted upload — House Rental System 6.3 Medium2022-12-03
CVE-2022-4280 Dot Tech Smart Campus System findUser information disclosure — Smart Campus System 4.3 Medium2022-12-03
CVE-2022-4232 SourceCodester Event Registration System unrestricted upload — Event Registration System 4.7 Medium2022-11-30
CVE-2022-3944 jerryhanjj ERP Commodity Management inventory.php uploadImages unrestricted upload — ERP 6.3 Medium2022-11-11
CVE-2022-3826 Huaxia ERP Retail Management list information disclosure — ERP 4.3 Medium2022-11-02
CVE-2022-3770 Yunjing CMS upload_img.html unrestricted upload — CMS 6.3 Medium2022-10-31
CVE-2022-3771 easyii CMS File Upload Management Upload.php file unrestricted upload — CMS 6.3 Medium2022-10-31
CVE-2022-3735 seccome Ehoney signup access control — Ehoney 6.3 Medium2022-10-28
CVE-2022-3549 SourceCodester Simple Cold Storage Management System Avatar unrestricted upload — Simple Cold Storage Management System 4.7 Medium2022-10-17
CVE-2022-3496 SourceCodester Human Resource Management System Admin Panel employeeadd.php access control — Human Resource Management System 6.3 Medium2022-10-14
CVE-2022-3458 SourceCodester Human Resource Management System Image File employeeview.php unrestricted upload — Human Resource Management System 6.3 Medium2022-10-12
CVE-2022-3436 SourceCodester Web-Based Student Clearance System Photo edit-photo.php unrestricted upload — Web-Based Student Clearance System 6.3 Medium2022-10-09
CVE-2022-2637 Privilege Escalation Vulnerability in Hitachi Storage Plug-in for VMware vCenter — Hitachi Storage Plug-in for VMware vCenter 5.4 Medium2022-10-06
CVE-2022-20855 Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst Access Points Privilege Escalation Vulnerability — Cisco IOS XE Software 7.9 High2022-09-30
CVE-2020-10728 Automation Broker apb 安全漏洞 — automationbroker/apb 7.8 -2022-08-16
CVE-2022-2626 Incorrect Privilege Assignment in hestiacp/hestiacp — hestiacp/hestiacp 6.5 -2022-08-05
CVE-2022-1746 2.2.8 INCORRECT PRIVILEGE ASSIGNMENT CWE-266 — ImageCast X application 6.1 -2022-06-24

Vulnerabilities classified as CWE-266 (特权授予不正确) represent 382 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.